mirror of
git://git.yoctoproject.org/meta-selinux
synced 2026-01-01 13:58:04 +00:00
05178ce178
Remove or update S definitions as required to work with oe-core S/UNPACKDIR changes. A default definition of S has been added to selinux_common.inc to avoid duplication in the set of recipes that use it to build packages from different subdirectories of the selinux repo. The three packagegroups test build successfully with these changes. Signed-off-by: Scott Murray <scott.murray@konsulko.com> Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
32 lines
832 B
BlitzBasic
32 lines
832 B
BlitzBasic
SUMMARY = "Run cmd under an SELinux sandbox"
|
|
DESCRIPTION = "\
|
|
Run application within a tightly confined SELinux domain. The default \
|
|
sandbox domain only allows applications the ability to read and write \
|
|
stdin, stdout and any other file descriptors handed to it."
|
|
SECTION = "base"
|
|
LICENSE = "GPL-2.0-or-later"
|
|
LIC_FILES_CHKSUM = "file://${S}/LICENSE;md5=393a5ca445f6965873eca0259a17f833"
|
|
|
|
require selinux_common.inc
|
|
|
|
SRC_URI += "file://sandbox-de-bashify.patch \
|
|
"
|
|
|
|
S = "${UNPACKDIR}/${BP}/sandbox"
|
|
|
|
DEPENDS = "libselinux libcap-ng gettext-native"
|
|
|
|
RDEPENDS:${PN} = "\
|
|
python3-core \
|
|
python3-math \
|
|
python3-shell \
|
|
python3-unixadmin \
|
|
libselinux-python \
|
|
selinux-python \
|
|
"
|
|
|
|
FILES:${PN} += "\
|
|
${datadir}/sandbox/sandboxX.sh \
|
|
${datadir}/sandbox/start \
|
|
"
|